Valve have improved critical steam vulnerability

Secret club security enthusiast nicknamed Florian announced on his Twitter account that Valve has fixed a vulnerability that allowed stealing passwords and skins.

Good news! Valve fixed my recent exploit and gave me permissions to disclose details. That being said, I am working on a detailed technical write-up which I am going to release soon. Stay tuned!

— Florian (@floesen_) April 17, 2021

We are talking about a bug that became known to the public on April 11, but was discovered two years ago - then Valve has forbidden to reveal the existence of the security breach.